Dataprise Defense Digest

Recently Published

Sep 29, 2022 BY DATAPRISE

Two Zero-Day RCE Vulnerabilities in Microsoft Exchange


Dataprise Defense Digest

UPDATE 10/5/2022 @ 8AM Microsoft has released updated mitigation guidance for this vulnerability, which is officially known as ProxyNotShell, because the initial mitigation could be easily bypassed to exploit the vulnerabilities. The updated mitigation steps are below: * Open IIS Manager * Se...

READ MORE >  

Aug 26, 2022 BY DATAPRISE

LastPass Breach


Dataprise Defense Digest

EXECUTIVE SUMMARY On August 25th, 2022 LastPass CEO Karim Toubba confirmed that they suffered a breach in their developer environment which allowed attackers to steal source code and propriety information. LastPass is among the most widely used password managers in the world and is in use by over 3...

READ MORE >  

Jun 15, 2022 BY DATAPRISE

Microsoft Windows Support Diagnostic Tool(Msdt) Remote Code Execution Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY Microsoft Security Center, along with other researchers, have discovered a vulnerability in Microsoft’s support diagnostic tool(MSDT) dubbed “Follina”. It allows attackers to run remote code execution(RCE) with privilege escalation. It is currently being exploited in the wild. Mic...

READ MORE >  

Apr 25, 2022 BY DATAPRISE

Zero-Click RCE Vulnerability in Windows Systems (CVE-2022-26809)


Dataprise Defense Digest

EXECUTIVE SUMMARY On Tuesday, April 12th, Microsoft released patches for CVE-2022-26809 – a zero-click exploit targeting Microsoft Remote Procedure Call (RPC) Services – present in various Microsoft Windows and Windows Server Products. An unauthenticated attacker could leverage this vulnerability ...

READ MORE >  

Mar 29, 2022 BY DATAPRISE

Google Chrome Zero-Day Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY On March 23, 2022 an anonymous user reported a Type Confusion vulnerability in the Google Chrome browser. On March 29, 2022, Google released a new version of their popular Chrome browser to patch the zero-day vulnerability in the Chrome browser for Windows, macOS, and Linux. Micro...

READ MORE >  

Mar 28, 2022 BY DATAPRISE

Critical Unauthenticated Stack-Based Buffer Overflow Vulnerability In SonicOS


Dataprise Defense Digest

EXECUTIVE SUMMARY SonicWALL has issued a security notice for a new vulnerability affecting a number of their Firewall appliances running SonicOS. Left unpatched, this vulnerability will allow a remote, unauthenticated attacker to perform Denial of Service (DoS) or remote code execution on the firew...

READ MORE >  

Mar 08, 2022 BY DATAPRISE

Linux Dirty Pipe Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY:  On March 8th, 2022 researchers discovered a vulnerability that allows for overwriting arbitrary read-only values, including /etc/shadow, allowing unprivileged actors to overwrite values and execute privileged processes as root. This vulnerability is considered high severity and ...

READ MORE >  

Jan 30, 2022 BY DATAPRISE

Windows 10 Privilege Escalation Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY Following the recent release of Windows 10 patches (January 11, 2022), security researchers have created a proof of concept exploit that allows a user to escalate their privileges to administrator through a specific vulnerable driver. This exploit was demonstrated to be highly eff...

READ MORE >  

Jan 26, 2022 BY DATAPRISE

PwnKit – Polkit PKEXEC Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY: A vulnerability has been discovered in the Linux Polkit (aka PolicyKit) pkexec utility, which facilitates communication between non-privileged and privileged processes. Pollkit also allows non-users to run privileged commands within a set policy. When this vulnerability is exploi...

READ MORE >  

Jan 21, 2022 BY DATAPRISE

Cisco CLI Command Injection Vulnerability


Dataprise Defense Digest

EXECUTIVE SUMMARY: Cisco has identified a new vulnerability affecting: * SD-WAN -vEdge, IOS XE hardware; vBond, vManage, vSmart, IOS XR software * Ultra Gateway * Network Services Orchestrator * Virtual Topology System * Enterprise NFV Infrastructure Software * ConfD This is a Command Lin...

READ MORE >  
Follow Dataprise